Swayam @ GDPR
The Europe Union’s General Data Protection Regulation is a law or a regulation which was adopted by European commission and start of enforcement is effective from 25 May 2018. This regulation has great impact on organisations across the globe who handle personal data of EU citizens or within European Union.
Swayam has been registered with ISO 9001:2015 international standards certification. This provides Quality management system that outlines some good business practices that we have in place. In addition to this, as global technology service provider, Swayam would like to brief you on the data related roles and responsibilities when you, our customers have chosen Swayam Group as value added technology provider and will explain our efforts to fulfil requirements of the GDPR.
Swayam as the Data Processor
The data you shared with us while using our products and services is your data subject and you are considered the data controller for this personal data. In our contracts or agreements, we refer to this data as client data.
According to Article 28 from the EU GDPR, “Where processing is to be carried out on behalf of a controller, the controller shall use only processors providing sufficient guarantees to implement appropriate technical and organisational measures in such a manner that processing will meet the requirements of this Regulation and ensure the protection of the rights of the data subject.”
We have the mutual contracts/agreements between our clients and Swayam while processing and controlling the data while hosting/maintaining their applications with third-party cloud providers. Swayam will process data only when we receive instructions from our data controllers.
Swayam as the Data Controller
Swayam also acts as the data controller for the personal data we collect about you, the user of our web app, mobile apps, and websites.
We process the data that is necessary for us to perform and meet certain requirements with you. Below are the few to describe.
- To improve the website that gives you better user experience
- Making sure that your data and Swayam’s systems are safe and secure
- Responsible for marketing of our services, products and its features
As the controller for your personal data, we are committed to protecting the privacy and data security of you and our customers around the world.
Completing a GDPR Audit
Earlier this year we completed a company-wide internal audit of Swayam Group to identify and map out the personal data we hold and to allow us to identify any areas where we would have to work on to achieve GDPR compliance. The GDPR audit was supported with a road-map for compliance which we have been working through.
Whitepapers & Blog Posts
We will provide customers with resources and helpful information about privacy and GDPR, including whitepapers and blog posts.
Ensuring right policies and training’s in place
We ensure our staff both in the UK and India who access and process customer’s data, have training on data protection, security and maintain confidentiality of that data.
Making sure the third-parties who we work with are also GDPR compliant
We are committed to GDPR regulations and making sure that all our third-party service providers and vendors we work with are also GDPR compliant.
At Swayam, we give our best to deliver an incredible customer experience and earning the trust of users. We will continue to make required changes whenever needed and make sure that our clients and partners are informed about this throughout process.
Swayam is committed to customers’ success and the protection of customer data. We hope that we have shared with you all the information you need in this area, but in the event that we haven’t, or if you have any questions then please do not hesitate to reach us out on firstname.lastname@example.org